As you know the default/configured port now, you can check the function via telnet "telnet localhost 5986".

Steps to implement WinHTTPS for WinRM:

1.) At first create an appropriate SSL certificate (you can use MMC and the Certificate Snapin to request that from your internal Microsoft CA). As friendly name you can choose "WinRM Certificate" or something which fits your company guidelines. As CN I used the full qualified hostname. Additional to that I added the IP address and the DNS names as an alias. The certificate usage must be "Server Authentication".

2.) Once you have the needed certificate open a Windows Powershell (run as admin) and search for the thumbprint via: